On IIS6, the ASP script is running as a lower-privileged user than in IIS5 (this mitigates security issues in case their is a vulnerability in ASP or related code). What you'll need to do is allow the script (which runs as Network Service by default) to access and run LDAP queries against the domain...